Polskie wsparcie PrestaShop
PrestaShop => Bezpieczeństwo => Wątek zaczęty przez: west w Styczeń 03, 2015, 10:38:44 am
-
Apache
nano /etc/apache2/mods-available/ssl.conf
znajdź
# enable only secure protocols: SSLv3 and TLSv1, but not SSLv2
SSLProtocol all -SSLv2
zamień
# enable only secure protocols: but not SSLv2 and SSLv3
SSLProtocol all -SSLv2 -SSLv3
service apache2 restart
postfix
polecenia
postconf -e 'smtpd_tls_mandatory_protocols=!SSLv2,!SSLv3'
postconf -e 'smtpd_tls_protocols=!SSLv2,!SSLv3'
postconf -e 'smtp_tls_protocols=!SSLv2,!SSLv3'
service postfix restart
Dovecot
nano /etc/dovecot/dovecot.conf
znajdź
ssl_key = </etc/postfix/smtpd.key
dodaj
ssl_protocols = !SSLv2 !SSLv3
polecenie service dovecot restart
pureftpd
nano /usr/sbin/pure-ftpd-wrapper
znajdź
'TLS' => ['-Y %d', \&parse_number_1],
dodaj
'TLSCipherSuite' => ['-J %s', \&parse_string],
polecenie: echo 'HIGH:MEDIUM:+TLSv1:!SSLv2:!SSLv3' > /etc/pure-ftpd/conf/TLSCipherSuite
polecenie service pure-ftpd-mysql restart